git.ipfire.org Git - thirdparty/bind9.git/commit

]> git.ipfire.org Git - thirdparty/bind9.git/commit

projects / thirdparty / bind9.git / commit

author	Matthijs Mekking <matthijs@isc.org>
	Fri, 19 Apr 2019 09:52:19 +0000 (11:52 +0200)
committer	Matthijs Mekking <matthijs@isc.org>
	Wed, 24 Apr 2019 07:41:22 +0000 (09:41 +0200)
commit	9c77cd830662ffbd159e0eeb915762c932adebdd
tree	f59753cf611f481c41a1bf756067cb5ee5cc1633	tree \| snapshot
parent	d8de28610d4a2a40f0687fb9ac2de4aab5950ae1	commit \| diff

Harden grep key ID calls

Key IDs may accidentally match dig output that is not the key ID (for
example the RRSIG inception or expiration time, the query ID, ...).
Search for key ID + signer name should prevent that, as that is what
only should occur in the RRSIG record, and signer name always follows
the key ID.

(cherry picked from commit 83473b975830bd30b6f78b4a332585da37e6a8d3)

bin/tests/system/dnssec/tests.sh

diff | blob | blame | history

Mirror of https://gitlab.isc.org/isc-projects/bind9.git

RSS Atom